Vulnerabilities > Pimcore > Admin Classic Bundle > 1.1.1

DATE CVE VULNERABILITY TITLE RISK
2024-02-07 CVE-2024-24822 Missing Authorization vulnerability in Pimcore Admin Classic Bundle
Pimcore's Admin Classic Bundle provides a backend user interface for Pimcore.
network
low complexity
pimcore CWE-862
critical
 9.1
9.1
2024-01-24 CVE-2024-23646 SQL Injection vulnerability in Pimcore Admin Classic Bundle
Pimcore's Admin Classic Bundle provides a backend user interface for Pimcore.
network
low complexity
pimcore CWE-89
8.8
8.8
2024-01-24 CVE-2024-23648 Injection vulnerability in Pimcore Admin Classic Bundle
Pimcore's Admin Classic Bundle provides a backend user interface for Pimcore.
network
low complexity
pimcore CWE-74
8.8
8.8
2023-11-28 CVE-2023-49075 Use of Single-factor Authentication vulnerability in Pimcore Admin Classic Bundle
The Admin Classic Bundle provides a Backend UI for Pimcore.
network
low complexity
pimcore CWE-308
7.2
7.2
2023-11-15 CVE-2023-47636 Information Exposure Through an Error Message vulnerability in Pimcore Admin Classic Bundle
The Pimcore Admin Classic Bundle provides a Backend UI for Pimcore.
network
low complexity
pimcore CWE-209
5.3
5.3
2023-10-31 CVE-2023-46722 Cross-site Scripting vulnerability in Pimcore Admin Classic Bundle
The Pimcore Admin Classic Bundle provides a backend UI for Pimcore.
network
low complexity
pimcore CWE-79
6.1
6.1
2023-10-30 CVE-2023-5844 Improper Authentication vulnerability in Pimcore Admin Classic Bundle
Unverified Password Change in GitHub repository pimcore/admin-ui-classic-bundle prior to 1.2.0.
network
low complexity
pimcore CWE-287
7.2
7.2